Re: hiding contacts (ojbect) from directory search (LDAP)
- From: "Jorge de Almeida Pinto [MVP - DS]" <SubstituteThisWithMyFullNameSeparatedByDots@xxxxxxxxx>
- Date: Tue, 29 Aug 2006 21:56:44 +0200
basically, what you are saying is that a group of people are able to query
AD for contacts and you dont want that.
so to prevent a group of people to view those contacts while allowing others
you would need to create a group, put those people in that group and assign
DENY to those contacts.
does this apply to a group of users or ALL users? and how large is that
group compared to the total number of users? is it possible that more be
people would belong to that group that is not allowed to view those
contacts?
--
Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)
# Jorge de Almeida Pinto # MVP Windows Server - Directory Services
BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
------------------------------------------------------------------------------------------
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always test before implementing!
------------------------------------------------------------------------------------------
#################################################
#################################################
------------------------------------------------------------------------------------------
<tractng@xxxxxxxxx> wrote in message
news:1156877227.939450.192810@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Jorge,
I am guessing you talking about denying the people/group on group
policy and not under the GAL?
If under the group policy on the OU, should there be an attributes that
you have to enable or just checking the "denying" on the group will do
the trick.
Thanks,
Tnt
Jorge de Almeida Pinto [MVP - DS] wrote:
you will need to modify the permissions of those objects so that that
group
of people cannot retrieve the contacts using a query
--
Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)
# Jorge de Almeida Pinto # MVP Windows Server - Directory Services
BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
------------------------------------------------------------------------------------------
* This posting is provided "AS IS" with no warranties and confers no
rights!
* Always test before implementing!
------------------------------------------------------------------------------------------
#################################################
#################################################
------------------------------------------------------------------------------------------
<tractng@xxxxxxxxx> wrote in message
news:1156606204.214966.26690@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Hello,
Can somebody point me to the right directions. I want to hide the
contacts from certain people in the domain. When users search
directory servcice using Outlook expresss,(if a user has a domain
account opens up outlook express, he/she can view all the contacts by
entering the dc=<domain>,dc=<ext> into Search base) they can still see
the contacts.
I have put all the contacts onto one single OU. Is there a way to do
this?
I am not talking about going into the exchange advanced tab and check
hide from exchange address lists.
Thanks,
Tnt
.
- References:
- hiding contacts (ojbect) from directory search (LDAP)
- From: tractng
- Re: hiding contacts (ojbect) from directory search (LDAP)
- From: Jorge de Almeida Pinto [MVP - DS]
- Re: hiding contacts (ojbect) from directory search (LDAP)
- From: tractng
- hiding contacts (ojbect) from directory search (LDAP)
- Prev by Date: Re: AD Site Criteria and DFS
- Next by Date: Re: Username Display in Active Directory
- Previous by thread: Re: hiding contacts (ojbect) from directory search (LDAP)
- Next by thread: Re: hiding contacts (ojbect) from directory search (LDAP)
- Index(es):
Relevant Pages
|
